|
Autopsy
4.9.1
Graphical digital forensics platform for The Sleuth Kit and other tools.
|
Classes | |
| class | AnalysisCompleteTask |
| class | DataAddedTask |
| class | IngestJobEventListener |
| class | IngestModuleEventListener |
Public Member Functions | |
| void | installListeners () |
| void | uninstallListeners () |
Static Public Member Functions | |
| static synchronized void | decrementCorrelationEngineModuleCount () |
| static synchronized int | getCeModuleInstanceCount () |
| static synchronized void | incrementCorrelationEngineModuleCount () |
| static synchronized boolean | isFlagNotableItems () |
| static synchronized boolean | isFlagSeenDevices () |
| static synchronized void | setCreateCrProperties (boolean value) |
| static synchronized void | setFlagNotableItems (boolean value) |
| static synchronized void | setFlagSeenDevices (boolean value) |
| static synchronized boolean | shouldCreateCrProperties () |
Static Private Member Functions | |
| static void | postCorrelatedBadArtifactToBlackboard (BlackboardArtifact bbArtifact, List< String > caseDisplayNames) |
| static void | postCorrelatedPreviousArtifactToBlackboard (BlackboardArtifact bbArtifact) |
Private Attributes | |
| final ExecutorService | jobProcessingExecutor |
| final PropertyChangeListener | pcl1 = new IngestModuleEventListener() |
| final PropertyChangeListener | pcl2 = new IngestJobEventListener() |
Static Private Attributes | |
| static int | correlationModuleInstanceCount |
| static boolean | createCrProperties |
| static boolean | flagNotableItems |
| static boolean | flagSeenDevices |
| static final String | INGEST_EVENT_THREAD_NAME = "Ingest-Event-Listener-%d" |
| static final Logger | LOGGER = Logger.getLogger(CorrelationAttributeInstance.class.getName()) |
Listen for ingest events and update entries in the Central Repository database accordingly
Definition at line 57 of file IngestEventsListener.java.
|
static |
Decrease the number of IngestEventsListeners adding contents to the Correlation Engine.
Definition at line 107 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.getCeModuleInstanceCount().
|
static |
Whether or not the Correlation Engine Module is enabled for any of the currently running ingest jobs.
Definition at line 127 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.correlationModuleInstanceCount.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.decrementCorrelationEngineModuleCount(), org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.IngestModuleEventListener.propertyChange(), and org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.AnalysisCompleteTask.run().
|
static |
Increase the number of IngestEventsListeners adding contents to the Correlation Engine.
Definition at line 99 of file IngestEventsListener.java.
| void org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.installListeners | ( | ) |
Definition at line 82 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.ingest.IngestManager.addIngestJobEventListener(), org.sleuthkit.autopsy.ingest.IngestManager.addIngestModuleEventListener(), and org.sleuthkit.autopsy.ingest.IngestManager.getInstance().
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.Installer.restored().
|
static |
Are notable items being flagged?
Definition at line 136 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.flagNotableItems.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.IngestModuleEventListener.propertyChange().
|
static |
Are previously seen devices being flagged?
Definition at line 145 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.flagSeenDevices.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.IngestModuleEventListener.propertyChange().
|
staticprivate |
Definition at line 188 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.ingest.IngestServices.fireModuleDataEvent(), org.sleuthkit.autopsy.casemodule.services.Services.getBlackboard(), org.sleuthkit.autopsy.casemodule.Case.getCurrentCaseThrows(), org.sleuthkit.autopsy.ingest.IngestServices.getInstance(), org.sleuthkit.autopsy.casemodule.Case.getServices(), and org.sleuthkit.autopsy.casemodule.services.Blackboard.indexArtifact().
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.DataAddedTask.run().
|
staticprivate |
Create an Interesting Aritfact hit for a device which was previously seen in the central repository.
| bbArtifact | the artifact to create the interesting item for |
Definition at line 236 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.ingest.IngestServices.fireModuleDataEvent(), org.sleuthkit.autopsy.casemodule.services.Services.getBlackboard(), org.sleuthkit.autopsy.casemodule.Case.getCurrentCaseThrows(), org.sleuthkit.autopsy.ingest.IngestServices.getInstance(), org.sleuthkit.autopsy.casemodule.Case.getServices(), and org.sleuthkit.autopsy.casemodule.services.Blackboard.indexArtifact().
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.DataAddedTask.run().
|
static |
Configure the listener to create correlation properties
| value | True to create properties; otherwise false. |
Definition at line 181 of file IngestEventsListener.java.
|
static |
Configure the listener to flag notable items or not.
| value | True to flag notable items; otherwise false. |
Definition at line 163 of file IngestEventsListener.java.
|
static |
Configure the listener to flag previously seen devices or not.
| value | True to flag seen devices; otherwise false. |
Definition at line 172 of file IngestEventsListener.java.
|
static |
Are correlation properties being created
Definition at line 154 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.createCrProperties.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.IngestModuleEventListener.propertyChange().
| void org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.uninstallListeners | ( | ) |
Definition at line 90 of file IngestEventsListener.java.
References org.sleuthkit.autopsy.ingest.IngestManager.getInstance(), org.sleuthkit.autopsy.ingest.IngestManager.removeIngestJobEventListener(), and org.sleuthkit.autopsy.ingest.IngestManager.removeIngestModuleEventListener().
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.Installer.uninstalled().
|
staticprivate |
Definition at line 62 of file IngestEventsListener.java.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.getCeModuleInstanceCount().
|
staticprivate |
Definition at line 65 of file IngestEventsListener.java.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.shouldCreateCrProperties().
|
staticprivate |
Definition at line 63 of file IngestEventsListener.java.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.isFlagNotableItems().
|
staticprivate |
Definition at line 64 of file IngestEventsListener.java.
Referenced by org.sleuthkit.autopsy.centralrepository.eventlisteners.IngestEventsListener.isFlagSeenDevices().
|
staticprivate |
Definition at line 67 of file IngestEventsListener.java.
|
private |
Definition at line 66 of file IngestEventsListener.java.
|
staticprivate |
Definition at line 59 of file IngestEventsListener.java.
|
private |
Definition at line 68 of file IngestEventsListener.java.
|
private |
Definition at line 69 of file IngestEventsListener.java.
Copyright © 2012-2018 Basis Technology. Generated on: Tue Dec 18 2018
This work is licensed under a
Creative Commons Attribution-Share Alike 3.0 United States License.